CSRF <%= form_authenticity_token %>
I'm protected, <%= current_user.full_name %>.
